Popular instant messaging and VoIP applications are leaving enterprises in grave danger of running into financial and legal disaster, according to industry experts.
Consumer applications such as Windows Live Messenger and Skype often skirt established network policies and protections, and unpatched security flaws can leave networks vulnerable to attacks and data breaches.
These unauthorised network applications have been dubbed 'greynets' which, while benevolent in function, could allow a network to be compromised though an intrusion or malware attack.
Greynets also pose legal risks, as many consumer IM applications provide little or no archiving of conversations. This can cause issues with regulatory compliance for companies required to track and audit IM content.
As a result, more companies are turning to third-party solutions to archive and manage greynet applications.
Specialised vendors offer everything from basic archiving software to hardware-based network appliances that include support for mobile phones and remote clients.
"Two and a half years ago more than half of our customers were financial, energy and healthcare organisations that had laws requiring them to log these conversations," said Frank Cabri, vice president of marketing at IM security firm Facetime.
"Now, companies like McDonald's and Metlife either have their own standards or have to comply with things like e-discovery. Organisations are starting to go beyond email, and determine what their infrastructure needs to look like."
Michael Osterman, president of Osterman Research, recommends firms to consider greynet security a "top three priority" alongside web and email security and monitoring.
The problem with securing networks from greynet-launched threats is that the applications often go unchecked by security systems that monitor email or web traffic for threats.
Simply banning the use of IM clients or blocking them from the network is often not an option.
"You can have a policy against IM use, but people are going to do it anyway. People violate policies all the time," Osterman told vnunet.com.
Chinese security boards reveal new vulnerability 16 Aug 2007
Unified Secure Gateway will protect against web, unified comms and public IM applications 10 Sep 2007
Resellers might be advised to join up with start-ups as shifting alliances change the face of the market, writes Nick Booth 26 Jul 2007
Drax unveils plans for 400MW co-firing facility that would allow it to burn biomass alongside coal at its giant power plant 22 May 2008
As San Francisco enacts the US's first carbon tax, institutional investors call on the Senate to support binding emission cuts of up to 90 per cent by 2050 22 May 2008
House of Representatives votes in favour of extending renewables tax credits, but fears remain that incentives will be allowed to lapse 22 May 2008
More news
Fresh from the acquisition of lighting specialist LPBV, Lighting Science boss Govi Rao explains how the expanded company plans to combat the supply constraints dogging the LED market 22 May 2008
With industrial plants wasting a huge chunk of the energy they generate through heat, scientists are exploring some wild and wacky ways of harnessing that lost power 21 May 2008
Firms may have woken up to the need to tackle global warming, but when it comes to adapting to its impacts too many remain fast asleep to both the risks and opportunities 20 May 2008 More in-depth
Post your comment
Send an email to the Business Green editor at feedback@businessgreen.com
